The U.S. Department of Health and Human Services Office for Civil Rights (OCR) and the Assistant Secretary for Technology Policy (ASTP) are pleased to announce the release of version 3.6 of the Security Risk Assessment (SRA) Tool. To help you make the most of these updates, ASTP and OCR are hosting live webinars on September…
Category: Health Data
Idaho man who threatened his hacking victims appeals his sentence in Georgia
Back in 2016-2018 when threat actors known as thedarkoverlord (“TDO”) were hacking entities and attempting to extort their victims by sending them emails with details about their family members and threats of what would happen if the victims didn’t pay up, a man in Meridian Idaho who called himself “Lifelock” or “Studmaster” was doing the…
Bail for 2 Hong Kong doctors accused of leaking data to implicate surgeon
Oscar Liu reports: Two public hospital doctors have been granted bail after being arrested in Hong Kong on suspicion of leaking a cancer patient’s medical data to highlight alleged professional shortcomings by her operating surgeon. Observers, meanwhile, said that although the incident did not align with the principles of “whistle-blowing”, it underscored the need for…
EuroFins cancer screening hack far bigger than thought, agency says
DutchNews.nl reports: The scale of a data theft from a Dutch national screening programme laboratory is far greater than initially reported, research agency Bevolkingsonderzoek Nederland said on Friday. Hackers may have accessed the personal and medical details of all 941,000 women who have taken part in the cervical cancer screening programme since 2017, the agency said in…
Taiwanese associated with Chinese group behind cyberattacks arrested
Keoni Everington reports: Two alleged Taiwanese clients of a Chinese ransomware group behind attacks on the Mackay Memorial Hospital and other targets in Taiwan have been arrested and released on bail. According to a Ministry of Justice Investigation Bureau, between February and March, the group CrazyHunter used ransomware to attack hospitals, publicly listed companies, and…
MPOWERHealth victim of cyberattack; protected health information involved (1)
Today’s post is a reminder that purging files is helpful, but remember to empty the recycle bin. A listing on WorldLeaks’ darkweb leak site yesterday claims that WorldLeaks acquired 1.5 TB of data from MPOWERHealth, comprising 1,622,547 files. MPOWERHealth describes itself as providing innovative healthcare solutions, specializing in Intraoperative Neuromonitoring (IONM), Surgical Assist, and Care…